Ussr Labs

43 exploits Active since Nov 1999
CVE-2000-0002 EXPLOITDB text WORKING POC
ZBServer Pro 1.50 - Remote Code Execution via Long GET Request
Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request.
CVE-2000-1116 EXPLOITDB text WRITEUP
TransSoft Broker FTP Server <4.3.0.1 - Buffer Overflow
Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command.
EIP-2026-118950 EXPLOITDB text WRITEUP
NetcPlus SmartServer3 3.5.1 - POP Buffer Overflow
CVE-2000-0567 EXPLOITDB perl WORKING POC
Microsoft Outlook and Outlook Express - Remote Code Execution via Malformed Email Date Header
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability.
CVE-2000-0929 EXPLOITDB text WRITEUP
Microsoft Windows Media Player 7 - DoS
Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability.
CVE-2000-0567 EXPLOITDB text WRITEUP
Microsoft Outlook and Outlook Express - Remote Code Execution via Malformed Email Date Header
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability.
CVE-2000-0129 EXPLOITDB text WORKING POC
Windows 95 and 98 - Denial of Service via Malformed .lnk File LIST Command
Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.
CVE-1999-0996 EXPLOITDB text WRITEUP
Infoseek Ultraseek Server - Remote Code Execution via Long GET Request
Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.
CVE-1999-1509 EXPLOITDB text WRITEUP
Etype Eserv 2.50 - Directory Traversal via URL
Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. (dot dot) in a URL.
CVE-2000-0734 EXPLOITDB text WRITEUP
eEye IRIS 1.01 beta - Denial of Service via UDP Connection Flood
eEye IRIS 1.01 beta allows remote attackers to cause a denial of service via a large number of UDP connections.
CVE-2000-0571 EXPLOITDB perl WORKING POC
LocalWEB HTTP Server 1.2.0 - Denial of Service via Long GET Request
LocalWEB HTTP server 1.2.0 allows remote attackers to cause a denial of service via a long GET request.
CVE-2000-0075 EXPLOITDB text WRITEUP
MsgCore - Denial of Service via Repeated SMTP Commands
Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple HELO, MAIL FROM, RCPT TO, and DATA commands in the same session.
CVE-2000-0272 EXPLOITDB text WRITEUP
RealNetworks RealServer - Denial of Service via Malformed Input to Port 7070
RealNetworks RealServer allows remote attackers to cause a denial of service by sending malformed input to the server at port 7070.
CVE-1999-1539 EXPLOITDB text WRITEUP
QVT/Net 4.3 and QVT/Term Plus 4.2d-4.3 - Buffer Overflow via Long Username or Password
Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long (1) user name or (2) password.
CVE-2000-1002 EXPLOITDB perl WORKING POC
CommuniGate Pro 3.3.2 - Info Disclosure
POP3 daemon in Stalker CommuniGate Pro 3.3.2 generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to determine valid email addresses on the server for SPAM attacks.
CVE-2000-0166 EXPLOITDB text WRITEUP
InterAccess TelnetD Server - Remote Code Execution via Long Login Name
Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name.
CVE-2000-0212 EXPLOITDB text WRITEUP
InterAccess TelnetD Server 4.0 - Denial of Service via Malformed Terminal Client Configuration
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information.
CVE-2000-0232 EXPLOITDB text WRITEUP
Microsoft Terminal Server - Denial of Service via Malformed TCP/IP Print Request
Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request.
CVE-2000-0056 EXPLOITDB text WRITEUP
Ipswitch IMail - Denial of Service via status.cgi
IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi.
CVE-1999-0991 EXPLOITDB text WORKING POC
GoodTech Telnet Server NT - Denial of Service via Long Login Name
Buffer overflow in GoodTech Telnet Server NT allows remote users to cause a denial of service via a long login name.
CVE-2000-0991 EXPLOITDB text WRITEUP
Hilgraeve, Inc. HyperTerminal < - RCE
Buffer overflow in Hilgraeve, Inc. HyperTerminal client on Windows 98, ME, and 2000 allows remote attackers to execute arbitrary commands via a long telnet URL, aka the "HyperTerminal Buffer Overflow" vulnerability.
CVE-2000-0484 EXPLOITDB python WORKING POC
Small HTTP Server 3.06 - Denial of Service via Memory Overflow
Small HTTP Server ver 3.06 contains a memory corruption bug causing a memory overflow. The overflowed buffer crashes into a Structured Exception Handler resulting in a Denial of Service.
CVE-2000-0014 EXPLOITDB text WORKING POC
Savant Web Server - Denial of Service via Null Character in URL
Denial of service in Savant web server via a null character in the requested URL.
CVE-2000-0408 EXPLOITDB text WRITEUP
Internet Information Server 4.05 and 5.0 - Denial of Service via Malformed Extension Data in URL
IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulnerability.
CVE-1999-0844 EXPLOITDB text WRITEUP
MDaemon - Denial of Service via Long URL
Denial of service in MDaemon WorldClient and WebConfig services via a long URL.